skills/jeremylongshore/claude-code-plugins-plus-skills/supabase-schema-from-requirements/Gen Agent Trust Hub
supabase-schema-from-requirements
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes natural language requirements from external users to perform sensitive actions.
- Ingestion points: Natural language requirements provided by the user as described in the metadata of SKILL.md.
- Boundary markers: No specific delimiters or safety warnings for the agent to ignore embedded instructions were found in the skill's instruction set.
- Capability inventory: The skill is authorized to use 'Write', 'Edit', and 'Bash(npm:*)' tools according to the allowed-tools configuration in SKILL.md.
- Sanitization: There is no evidence of input validation or sanitization for the natural language requirements before they are processed by the agent.
Audit Metadata